SUSE 12-SP3: 2017:3388-1 Important DoS Risks in ImageMagick

suse

December 20, 2017

An update that solves 32 vulnerabilities and has one errata An update that solves 32 vulnerabilities and has one errata An update that solves 32 vulnerabilities and has one errata ...

Summary

This update for ImageMagick fixes the following issues: * CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service [bsc#1061254] * CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service [bsc#1060176] * Memory leak in WriteINLINEImage in coders/inline.c could lead to denial of service [bsc#1052744] * CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas could possibly disclose potentially sensitive memory [bsc#1059778] * CVE-2017-11640: NULL pointer deref in WritePTIFImage() in coders/tiff.c [bsc#1050632] * CVE-2017-14342: a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c could lead to denial of service [bsc#1058485]

Topics Covered

security advisory denial of service important suse imagemagick

References

#1048457 #1049796 #1050083 #1050116 #1050139

#1050632 #1051441 #1051847 #1052450 #1052553

#1052689 #1052744 #1052758 #1052764 #1054757

#1055214 #1056432 #1057157 #1057719 #1057729

#1057730 #1058485 #1058637 #1059666 #1059778

#1060176 #1060577 #1061254 #1062750 #1066003

#1067181 #1067184 #1067409

Cross- CVE-2017-11188 CVE-2017-11478 CVE-2017-11523

CVE-2017-11527 CVE-2017-11535 CVE-2017-11640

CVE-2017-11752 CVE-2017-12140 CVE-2017-12435

CVE-2017-12587 CVE-2017-12644 CVE-2017-12662

CVE-2017-12669 CVE-2017-12983 CVE-2017-13134

CVE-2017-13769 CVE-2017-14138 CVE-2017-14172

CVE-2017-14173 CVE-2017-14175 CVE-2017-14341

CVE-2017-14342 CVE-2017-14531 CVE-2017-14607

CVE-2017-14682 CVE-2017-14733 CVE-2017-14989

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2017:3388-1

Rating: important

Topics Covered

security advisory denial of service important suse imagemagick

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12-SP3: 2017:3388-1 Important DoS Risks in ImageMagick

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12-SP3: 2017:3388-1 Important DoS Risks in ImageMagick

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!